• Press Releases
    • Submit a press release
    • Read All
  • Advertise
  • Contact us
Crypto.com Logo Crypto.com Logo
Bitcoinist.com
No Result
View All Result
  • Bitcoin
    • News
    • Price
    • Businesses
    • Acceptance
    • Technology
    • Investment
    • Regulation
    • Reviews
    • All Bitcoin News
  • Altcoins
    • News
    • Price
    • Ethereum
    • Ripple
    • Litecoin
    • EOS
    • NAGA
    • All Altcoin News
  • Tech
    • Blockchain
    • Security
    • FinTech
  • Industry
    • Press releases
  • Price
    • Bitcoin Price
    • Ethereum Price
    • Litecoin Price
    • Binance Coin Price
    • Monero Price
    • MimbleWimbleCoin Price
  • How to
    • Buy gift cards/mobile Top Ups with Cryptos
    • What Is Bitcoin?
    • Best Bitcoin Wallet
    • Bitcoin vs Ethereum
    • Why Use Blockchain Technology?
    • Bitcoin Cash ABC vs. Bitcoin Cash SV
    • How to Buy Cryptocurrency
    • Bitcoin Mining
    • Best Bitcoin Brokers
    • Best Bitcoin Forex Brokers
    • How To Earn Btcoin
    • What is Facebook Libra?
    • Ripple and XRP: The Complete Guide
  • Play Games
  • BET&WIN
  • Bitcoin
    • News
    • Price
    • Businesses
    • Acceptance
    • Technology
    • Investment
    • Regulation
    • Reviews
    • All Bitcoin News
  • Altcoins
    • News
    • Price
    • Ethereum
    • Ripple
    • Litecoin
    • EOS
    • NAGA
    • All Altcoin News
  • Tech
    • Blockchain
    • Security
    • FinTech
  • Industry
    • Press releases
  • Price
    • Bitcoin Price
    • Ethereum Price
    • Litecoin Price
    • Binance Coin Price
    • Monero Price
    • MimbleWimbleCoin Price
  • How to
    • Buy gift cards/mobile Top Ups with Cryptos
    • What Is Bitcoin?
    • Best Bitcoin Wallet
    • Bitcoin vs Ethereum
    • Why Use Blockchain Technology?
    • Bitcoin Cash ABC vs. Bitcoin Cash SV
    • How to Buy Cryptocurrency
    • Bitcoin Mining
    • Best Bitcoin Brokers
    • Best Bitcoin Forex Brokers
    • How To Earn Btcoin
    • What is Facebook Libra?
    • Ripple and XRP: The Complete Guide
  • Play Games
  • BET&WIN
Bitcoinist.com
No Result
View All Result
Unchained Capital, a doctor in front of a computer in the eighties
Nexo

Data Leak At Unchained Capital, NYDIG, Swan & BlockFi. At The Same Time

Eduardo Próspero by Eduardo Próspero
2 months ago
in Bitcoin, Bitcoin Businesses, Bitcoin Security
1

What do Unchained Capital, NYDIG, Swan Bitcoin, and BlockFi have in common? Third-party providers. Even though the four companies confronted the data leak head-on and admitted their wrongs, the compromised security was someone else’s. Luckily, the data the bad actors stole was not critical financial information, but marketing-driven personal info. Terrible, to be sure, but not as terrible as it could have been.

Related Reading | BlockFi Survey Says 33% Of Women Plans To Buy Crypto This Year

5 BTC + 300 Free Spins for new players & 15 BTC + 35.000 Free Spins every month, only at mBitcasino. Play Now!

All the companies – Unchained Capital, NYDIG, Swan Bitcoin, and BlockFi – released press releases with mea culpas. Let’s explore them to see what we learn from them.

What Does Unchained Capital Have To Say For Themselves?

The company’s CEO and Co-Founder, Joseph Kelly, addressed the problem through a letter in the Unchained Capital blog. Kelly let everyone know that “a security incident that occurred at one of the vendors we previously used for email marketing.” Also, that “there is no impact whatsoever to Unchained Capital’s systems.” Then, he described what happened:

“ActiveCampaign (“AC”), a third-party email marketing provider that Unchained Capital used until early in 2022, was the subject of a social engineering attack last week. This attack occurred after Unchained Capital had closed its AC account and requested that all data be purged.”

Notice that the provider, ActiveCampaign, is not the same as in the following three cases. Unchained Capital makes clear that none of this was stolen: “client profile information containing personally identifiable information (e.g. addresses, SSN, DOB, IDs, phone numbers used in our KYC process), bank account numbers, passwords, bitcoin addresses, bitcoin balances, loan balances, trading activity, vault statements, loan statements.”

BitStarz Player Lands $2,459,124 Record Win! Could you be next big winner?
Get 110 USDT Futures Bonus for FREE!

On the other hand, the “data included: email addresses, usernames, account status (active/inactive) and whether the client had an active vault or loan with Unchained Capital (yes or no).” And, for some unlucky users, “their name, email address, and IP address”

What should compromised users do?

“It is always important that our clients be diligent about confirming all communications and any requests that appear to come from Unchained Capital. Given the data leak, clients should be on high alert for any spear phishing attempts. Be especially careful about clicking on any links.”

BTCUSD price chart for 03/21/2022 - TradingView

BTC price chart for 03/21/2022 on Oanda | Source: BTC/USD on TradingView.com

Swan Bitcoin, NYDIG, And BlockFi Point At Hubspot

We could ensemble the same press release that Unchained Capital put out using these three companies’ communications. The difference is, Hubspot is the culprit party here. A similar company to ActiveCampaign, but, a different company altogether. Is there any more to this story? Is someone targeting these bitcoin-related companies?

Let’s see what we can learn from Swan Bitcoin’s letter. Their description of the situation namedrops Hubspot four times in the first paragraph:

“On March 18th, 2022 one of our third-party vendors, Hubspot, confirmed that a bad actor gained access to Hubspot data after a Hubspot employee account was compromised. Hubspot notified us that the compromise was to a portion of their platform that included Swan client data.”

Yesterday, Hubspot, a third-party marketing vendor, confirmed a bad actor within their company gained access to Swan client marketing data.

Read Cory’s email to clients in the attached screenshots for details.

We’ll keep you updated. pic.twitter.com/qtXVk5AOW8

— Swan Bitcoin (@SwanBitcoin) March 19, 2022

They also described the size of the damage with comforting words “We use Hubspot for limited client communication and marketing data. We do not use Hubspot to store financial information, transactions, or other sensitive personal or financial information.” So, nothing to see here, right?

Let’s look at BlockFi, the company describes the situation in more dramatic terms. “To be clear, BlockFi’s internal systems and client funds are safeguarded and were not impacted. We can also confirm that BlockFi account passwords, government-issued ID numbers and social security numbers were never stored on Hubspot.”

Here are steps to protect your online presence from third-party bad actors: pic.twitter.com/tOKf16wOuf

— BlockFi (@BlockFi) March 19, 2022

And they don’t downplay the damage so much:

“As part of Hubspot being used for CRM and marketing purposes, BlockFi stored data that included name, email, and phone number for the majority of our clients. We are working with Hubspot as they continue their investigation to understand the full scope of impact.”

Neither does NYDIG, who ended their press release with a call to action for clients:

“To protect yourself, it is important that you exercise extra vigilance and care when reviewing or responding to emails, text messages, and phone calls, particularly those related to NYDIG.”

What Are Unchained Capital, Swan Bitcoin, NYDIG, And BlockFi Doing About It?

To answer this, we quote Swan’s Cofounder Yan Pritzker, who tweeted:

“We have been working round the clock since the incident with procedures including a data scrub, termination of further data to 3rd parties and complete audit. We will put out a comprehensive plan in the next week which will include moving away from using vendors for email.”

Startups rely on 3rd parties because it would be impossible to get a company off the ground if you build everything yourself. We chose vendors with extremely high standards. Hubspot had soc 2 type ii certification, for example. But it’s clearly time to take this in house.

— Yan Pritzker 🦢 (@skwp) March 20, 2022

And, since all the company’s responses have been similar, we hope their security procedures are similar also. However, a few burning questions remain. Were these companies targeted? Were the bad actors precisely looking for the information they got? Will we hear about these leaks in the future, connected to a bigger story? 

Related Reading | Bitcoin Firm NYDIG Gets $200m Injection from Morgan Stanley, Soros

If all of the companies would’ve been using just one service, that would be one thing. But both ActiveCampaign and Hubspot? On the same day? Targeting four bitcoin-related companies? There might be more to this story.

Featured Image by National Cancer Institute on Unsplash | Charts by TradingView
ShareTweetShareShare

Sign Up for Our Newsletter!

For updates and exclusive offers enter your email.

I consent to my submitted data being collected and stored.
Eduardo Próspero

Eduardo Próspero

Eduardo Prospero is an author, a content writer, and a professional rapper. A Bitcoin maximalist in disguise. Working on a Bitcoin book. Beware of my Telegram impersonator!

Related Posts

Bitcoin

By The Numbers: Bitcoin’s Most Volatile Day Of 2022 Compared

10 hours ago
Bitcoin

Bitcoin Spot Volume Soars, 7-Day Average Tops $10B

14 hours ago
Bitcoin

Crypto Market Madness Leads To Surge In Bitcoin On-Chain Activity

16 hours ago
Sam Bankman-Fried: Bitcoin Isn’t A Viable Payment Network

Sam Bankman-Fried: Bitcoin Isn’t A Viable Payment Network

20 hours ago
US Justice

US Justice Department Executes First Criminal Crypto Charge

21 hours ago
Texas, a huge boot in front of a store

Bitcoin & Energy Merge In Texas: 3 Giant Companies Announce New Mining Facility

1 day ago

Bitcoin news portal providing breaking news, guides, price analysis about decentralized digital money & blockchain technology.

Bitcoin

  • News
  • Price
  • Businesses
  • Acceptance
  • Technology
  • Investment
  • Regulation
  • Reviews

Altcoins

  • News
  • Price
  • Ethereum
  • Ripple
  • Litecoin
  • EOS
  • NAGA

Categories

  • Blockchain
  • Security
  • FinTech
  • Technology
  • Trending
  • Breaking News
  • Press Releases
  • How to

Pages

  • Contact us
  • Editorial Policy
  • Advertise
  • Crypto Prices from Nomics
© 2022 Bitcoinist.com. All Rights Reserved.
  • Bitcoin
    • News
    • Price
    • Businesses
    • Acceptance
    • Technology
    • Investment
    • Regulation
    • Reviews
    • All Bitcoin News
  • Altcoins
    • News
    • Price
    • Ethereum
    • Ripple
    • Litecoin
    • EOS
    • NAGA
    • All Altcoin News
  • Tech
    • Blockchain
    • Security
    • FinTech
  • Industry
    • Press releases
  • Price
    • Bitcoin Price
    • Ethereum Price
    • Litecoin Price
    • Binance Coin Price
    • Monero Price
    • MimbleWimbleCoin Price
  • How to
    • Buy gift cards/mobile Top Ups with Cryptos
    • What Is Bitcoin?
    • Best Bitcoin Wallet
    • Bitcoin vs Ethereum
    • Why Use Blockchain Technology?
    • Bitcoin Cash ABC vs. Bitcoin Cash SV
    • How to Buy Cryptocurrency
    • Bitcoin Mining
    • Best Bitcoin Brokers
    • Best Bitcoin Forex Brokers
    • How To Earn Btcoin
    • What is Facebook Libra?
    • Ripple and XRP: The Complete Guide
  • Play Games
  • BET&WIN

© 2021 Bitcoinist. All Rights Reserved.

This website uses cookies. By continuing to use this website you are giving consent to cookies being used. Visit our Privacy Center or Cookie Policy.